KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community!
The forum is divided into four main topics or categories:
Social Engineering,Ransomware,Phishing andSecurity Awareness Training.
You are invited to be one of the first to join us at:
https://discuss.hackbusters.com.

Google opens up VSAQ security assessor to the open source community

Google has released assessment software to the open-source community to grant vendors the opportunity to scrutinize their own security practices.

On Monday, the tech giant said the Vendor Security Assessment Questionnaire (VSAQ), a selection of self-adapting questionnaires, have been used in the past to help the firm assess the practices and risk related to hundreds of vendors and their security every year.

Now, VSAQ is open for use by vendors that wish to assess themselves or their suppliers and find ways in which to improve their security measures.

In a blog post, Lukas Weichselbaum and Daniel Fabian from the Google Security team said VSAQ is useful not only for information gathering but also triage purposes when it comes to "evaluating multiple aspects of a vendor's security and privacy posture."

After trying out the software, many vendors used the information gathered by the questionnaire -- which in turn pointed out problems and areas for improvement -- to tackle weak...(continued)